https://community.isc2.org/t5/Threats/Conti-Ransomware-Patch-VMWare-NOW/m-p/48671#M427 <P><SPAN>Conti is a Russian-speaking group that has been in the ransomware game for a long time, being the successor of the infamous Ryuk.&nbsp;</SPAN>The gang did not waste much time adopting the new attack vector and is the first "top-tier" operation known to weaponize the Log4j vulnerability.</P><P>&nbsp;</P><P>The ransomware operation is using the critical Log4Shell exploit to gain rapid access to <STRONG>internal VMware vCenter Server</STRONG> instances and encrypt virtual machines.&nbsp;</P><P>&nbsp;</P><P><STRONG>Patch now!</STRONG> More here in this <A href="https://www.bleepingcomputer.com/news/security/conti-ransomware-uses-log4j-bug-to-hack-vmware-vcenter-servers/" target="_blank" rel="noopener">article</A>.</P> Fri, 17 Dec 2021 19:05:02 GMT AppDefects 2021-12-17T19:05:02Z https://community.isc2.org/t5/Threats/Conti-Ransomware-Patch-VMWare-NOW/m-p/48671#M427 <P><SPAN>Conti is a Russian-speaking group that has been in the ransomware game for a long time, being the successor of the infamous Ryuk.&nbsp;</SPAN>The gang did not waste much time adopting the new attack vector and is the first "top-tier" operation known to weaponize the Log4j vulnerability.</P><P>&nbsp;</P><P>The ransomware operation is using the critical Log4Shell exploit to gain rapid access to <STRONG>internal VMware vCenter Server</STRONG> instances and encrypt virtual machines.&nbsp;</P><P>&nbsp;</P><P><STRONG>Patch now!</STRONG> More here in this <A href="https://www.bleepingcomputer.com/news/security/conti-ransomware-uses-log4j-bug-to-hack-vmware-vcenter-servers/" target="_blank" rel="noopener">article</A>.</P> Fri, 17 Dec 2021 19:05:02 GMT https://community.isc2.org/t5/Threats/Conti-Ransomware-Patch-VMWare-NOW/m-p/48671#M427 AppDefects 2021-12-17T19:05:02Z